Heh, call me the idiot! It works *WHEN* I stop Bastille :) I am guessing that
some rule in Bastille is over riding my iptables commands to allow the traffic!
So, now I have to figure out the rules that Bastille is putting in place and write
my own iptables script.
Thank you to everyone!
-Scott
Scott,
If you want to block access to a specific service then just modify the rule to appear this way. Something I forgot to ask is how many nics are you using? you may also have to specify the interface they're coming in on as well.
Ex: iptables -A INPUT -p tcp --dport 25 -s 209.0.0.0 -j DROP
If you have two nics in the machine and your public interface, like mine is, eth1, then the rule would look like this:
iptables -A INPUT -i eth1 -p tcp --dport 25 -s 209.0.0.0 -j DROP
Or, you could write like this provided you have two nics;
iptables -A INPUT -i eth1 -s 209.0.0.0 -j DROP
Bastille's already existing rules shouldn't cancel out any additional rules you add to the firewall. That wouldn't exactly be a good thing.
-- Mark ----------------------------------------------------------- Paid for by Penguins against modern appliances(R) Linux User Since 1996 Powered by Mandrake Linux 8.2 & 9.0
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
